Unable to access f5.com from a transparent bluecoat proxy

I have had the same issue when trying to access any f5.com sites through the ProxySG. It appears you will need to upgrade to SGOS v6.5.6.1 or higher since some sites have now enabled the ECDHE cipher.

https://bluecoat.secure.force.com/knowledgebase/articles/Technical_Alert/000022362/?l=en_US&fs=Search&pn=1

• Overview

With the recent SSL exploits over the past year, the majority of Internet server/sites have refreshed their server certificates. The refreshed certificates typically use newer stronger ciphers, such as ECDHE, and in some cases may eliminate support for other ciphers. As a result of this change in the industry, there has been a rapid change to rely on ciphers such as ECDHE and ECDSA.

• Status

SGOS 6.5.6.1 and later now supports HTTPS interception in forward proxy mode when sites use ECDHE ciphers. The following variants of ECDHE-RSA have been added: •ECDHE-RSA-AES128-SHA (0xC013) •ECDHE-RSA-AES256-SHA (0xC014) •ECDHE-RSA-AES128-SHA256 (0xC027) •ECDHE-RSA-AES128-GCM-SHA256 (0xC02F) •ECDHE-RSA-RC4-SHA (0xC011) Refer to the Release Notes for important information on these ciphers and appliance performance.

ECDHE support for reverse proxy is not yet supported. Support is targeted for a future release.

As of SGOS 6.5.7.1 and later, support for HTTPS interception in forward proxy mode when ECDSA ciphers for HTTPS interception has been added for the following variants: •ECDHE-ECDSA-AES128-SHA256 (0xC023) •ECDHE-ECDSA-AES128-GCM-SHA256 (0xC02B) •ECDHE-ECDSA-RC4-SHA (0xC007) •ECDHE-ECDSA-AES128-SHA (0xC009) •ECDHE-ECDSA-AES256-SHA (0xC00A) Refer to the Release Notes for important information on these ciphers and appliance performance and behavior changes on HTTP response code 407 handling in SGOS 6.5.7.x.